YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
Circle Format Integer Overflow PoC
Proof of Concept for integer truncation vulnerability in Samsung ONE (onert-micro) Circle model parser.
Files
poc_circle_reshape_overflow.pyโ Generates malicious .circle model filemff-poc-samsung-one-circle.pyโ Alternative PoC generatorpoc_circle_reshape_overflow.circleโ Pre-generated malicious model (428 bytes)
Usage
python poc_circle_reshape_overflow.py
# Produces: poc_circle_reshape_overflow.circle
Vulnerability
Integer truncation in OMRuntimeAllocator (size_t โ int32_t) leads to heap buffer overflow when loading crafted Circle models with large tensor dimensions.
Disclosure
Submitted via Huntr Model File Format program.
Inference Providers NEW
This model isn't deployed by any Inference Provider. ๐ Ask for provider support